[ http://jira.jboss.com/jira/browse/JBAS-1473?page=history ] Scott M Stark closed JBAS-1473: -------------------------------
Resolution: Done The password based login modules now support a digestCallback option which specifies an implementation of the org.jboss.crypto.digest.DigestCallback interface: /** * An interface that can be used to augment the behavior of a digest hash. * One example usecase is with the password based login modules to * modify the behavior of the hashing to introduce prefix/suffix salts. * * @author [EMAIL PROTECTED] * @version $Revision: 1.1 $ */ public interface DigestCallback { /** Pass through access to the login module options. When coming from a * login module this includes the following keys: * javax.security.auth.login.name - for the username * javax.security.auth.login.password - for the String password */ public void init(Map options); /** * Pre-hash callout to allow for content before the password. Any content * should be added using the MessageDigest update methods. * @param digest - the security digest being used for the one-way hash */ public void preDigest(MessageDigest digest); /** Post-hash callout afer the password has been added to allow for content * after the password has been added. Any content should be added using the * MessageDigest update methods. * @param digest - the security digest being used for the one-way hash */ public void postDigest(MessageDigest digest); } > Add support for customization of the login module password hash mechanism > ------------------------------------------------------------------------- > > Key: JBAS-1473 > URL: http://jira.jboss.com/jira/browse/JBAS-1473 > Project: JBoss Application Server > Type: Feature Request > Components: Security > Reporter: Scott M Stark > Assignee: Scott M Stark > Fix For: JBossAS-5.0 Alpha, JBossAS-4.0.2 Final > > Original Estimate: 1 day > Remaining: 1 day > > A generic extension to add a DigestCallback extension interface like the > following should be made to the jboss login modules: > public interface DigestCallback > { > /** Pass through access to the login module options */ > public void init(java.util.Map options); > /** Pre-hash callout to allow for content before the password */ > public void preDigest(java.security.MessageDigest digest); > /** Post-hash callout afer the password has been added to allow for > content after the password */ > public void postDigest(java.security.MessageDigest digest); > } > options: the option maps passed to the login module with any unknown options > that affect the DigestCallback simply passed through > digest: the standard MessageDigest created based on the digest algorithm > specified via the login module options. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - If you want more information on JIRA, or have a bug to report see: http://www.atlassian.com/software/jira ------------------------------------------------------- This SF.net email is sponsored by Demarc: A global provider of Threat Management Solutions. Download our HomeAdmin security software for free today! http://www.demarc.com/info/Sentarus/hamr30 _______________________________________________ JBoss-Development mailing list JBoss-Development@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/jboss-development